Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/IOSlRJTiAuPqauOdyYNfJYhv3Z4.roa
File: IOSlRJTiAuPqauOdyYNfJYhv3Z4.roa (raw, json)
Hash identifier: F5TqQnQwpCXkvEra4fc+eUsCejmoU1SHLDU0bj0tiag=
Subject key identifier: 20:E4:A5:44:94:E2:02:E3:EA:6A:E3:9D:C9:83:5F:25:88:6F:DD:9E
Certificate issuer: /CN=1ff2cf1a6230cd62cb3ca8a1bc1d4a4bb4337c1d
Certificate serial: 018756BAE789AD56A525AA408135185E9D00
Authority key identifier: 1F:F2:CF:1A:62:30:CD:62:CB:3C:A8:A1:BC:1D:4A:4B:B4:33:7C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H_LPGmIwzWLLPKihvB1KS7QzfB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/IOSlRJTiAuPqauOdyYNfJYhv3Z4.roa
Signing time: Thu 06 Apr 2023 13:21:42 +0000
ROA not before: Thu 06 Apr 2023 13:21:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49434
IP address blocks: 185.198.20.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Apr 2023 17:37:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:ba:e7:89:ad:56:a5:25:aa:40:81:35:18:5e:9d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ff2cf1a6230cd62cb3ca8a1bc1d4a4bb4337c1d
Validity
Not Before: Apr 6 13:21:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20e4a54494e202e3ea6ae39dc9835f25886fdd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fe:60:cf:5e:9c:4d:77:d6:ea:0b:0c:07:2f:
73:b1:af:23:64:14:e6:e7:47:7f:25:0b:9d:af:e9:
66:95:f9:5f:f6:41:5b:13:3b:4e:46:0e:0d:69:47:
1b:2b:77:33:9f:4d:b0:59:3f:8a:63:21:4f:d5:53:
fe:4b:25:a5:eb:8b:52:4c:1d:cf:ef:04:3d:d7:73:
9b:8a:3f:6d:4e:1a:07:c8:f9:05:8c:01:13:e9:00:
c7:27:54:49:92:4f:45:90:20:5b:ec:c7:9e:44:36:
6c:dc:5f:13:b0:49:e4:aa:f6:77:45:e6:86:02:ba:
6d:54:fe:0f:d8:21:78:06:94:a6:99:86:7a:7e:84:
36:e8:90:2c:a0:5d:53:7a:9f:53:a2:39:b1:30:16:
8d:3f:91:34:c1:73:4c:97:22:56:20:70:66:9c:bd:
46:c0:98:43:8d:4c:08:e8:70:77:59:bd:94:6d:4f:
32:6d:e7:77:df:df:1c:ff:07:fe:d3:00:29:3c:54:
2a:10:20:a6:4e:5b:a2:44:7d:63:6d:7e:ee:90:d5:
99:09:9c:47:52:50:2a:ad:a7:27:b9:fa:90:30:b4:
34:ba:fa:ba:5f:75:ec:56:25:ad:71:0a:48:6c:e5:
a0:c5:00:b1:02:dd:d0:2a:d9:8c:47:6a:f4:49:25:
d8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E4:A5:44:94:E2:02:E3:EA:6A:E3:9D:C9:83:5F:25:88:6F:DD:9E
X509v3 Authority Key Identifier:
keyid:1F:F2:CF:1A:62:30:CD:62:CB:3C:A8:A1:BC:1D:4A:4B:B4:33:7C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H_LPGmIwzWLLPKihvB1KS7QzfB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/IOSlRJTiAuPqauOdyYNfJYhv3Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/H_LPGmIwzWLLPKihvB1KS7QzfB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.20.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:4b:a2:00:c4:58:34:6e:53:31:5b:22:d0:21:4c:d7:ab:ae:
6a:cc:d0:dd:7d:17:49:46:9e:30:9d:e8:05:3d:0f:ff:f9:49:
43:d2:32:58:74:9c:0a:b1:09:f2:9d:b0:a2:b8:29:98:0a:32:
8d:16:65:40:f4:28:ae:ed:65:a6:39:20:ba:7a:f0:20:40:ff:
d6:01:5a:9e:1c:61:42:26:38:9b:4c:3a:e4:ec:55:29:0f:2a:
8d:be:ee:e8:bb:e9:55:c0:03:65:20:1e:17:f6:d0:de:59:13:
3a:fd:e5:69:49:d2:69:35:f0:b0:84:23:2c:cc:f6:0c:a1:d3:
a0:fa:34:f2:61:36:3e:5f:45:de:9f:1d:61:c2:a3:a9:c4:f3:
7d:9f:ee:cd:df:ce:3d:28:03:d1:43:7d:d0:0f:96:56:d7:e3:
c7:c2:5f:63:0a:da:b0:58:cd:88:7a:64:01:e4:ce:5a:e4:85:
1d:d7:0d:6b:c9:78:b4:72:01:3e:ea:ee:d1:26:64:12:a4:dc:
89:f4:e4:a6:f0:c7:81:f3:c0:62:e4:6a:fd:5e:88:a2:6c:a5:
37:43:04:a4:4b:1c:75:23:65:23:34:93:cc:ca:29:83:0d:ce:
92:80:cc:47:06:81:f4:43:a1:25:06:8b:ec:6b:9b:58:36:00:
1b:ea:e3:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:58 2024 by rpki-client on console-ams.rpki-client.org